Customer Privacy and Web Security

Web Site Privacy Statement

Visitors to this bank website remain anonymous. We do not collect identifying information about visitors to our site. We may use standard software to collect non-identifying information about our visitors, such as:

• Date and time our site was accessed
• IP address (A numeric address given to servers connected to the Internet)
• Web browser used
• City, state, and country

The bank uses this information to create summary statistics and to determine the level of interest in information available on our site. This information is used internally, as appropriate, to handle the sender's request. It is not disseminated or sold to other organizations. Some areas of our website may use a "cookie" temporarily stored in the visitor's computer memory (RAM) to allow the web server to log the pages you use within the site and to know if you have visited the site before.

Online Security Statement

This Online Banking System brings together a combination of industry-approved security technologies to protect data for the bank and for you, our customer. It features password-controlled system entry, a Digital ID for the bank's server, Secure Sockets Layer (SSL) protocol for data encryption, and a firewall to regulate the inflow and outflow of server traffic.

Secure Access and Verifying User Authenticity

To begin a session with the bank's server the user must key in a Login ID and a password. Our system uses a "3 strikes and you're out" lock-out mechanism to deter users from repeated login attempts. After three unsuccessful login attempts, the system locks the user out, requiring a phone call to the bank to reset the password before re-entry into the system.

Secure Data Transfer

Once the server session is established the user and the server are in a secured environment. Data transmitted between the user and the server is encrypted with Secure Sockets Layer (SSL) protocol. With SSL, data transmitted between the bank and customer is encrypted and can only be decrypted with the public and private key pair.

Router and Firewall

Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware, works in conjunction with the firewall, a piece of software, to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving web pages or sending customer requests to the bank.

Using the above technologies, your online banking transactions are secure.

Privacy Policy

Important Terminology

• We, our and us mean Horizon Bank.
• You and your mean consumer customers who have a continuing relationship with us; such as, deposit accounts, loan accounts, credit cards, or safe deposit boxes; and that use these financial products and services for personal, family or household purposes.
• Nonpublic personal information means information we collect about you in connection with providing a financial product or service to you.
• Affiliate means a company that we control or own, a company that controls or owns us, or a company that is controlled or owned by the same company that controls or owns us.
• Nonaffiliate means a company that is not an affiliate of ours.

How Information Is Gathered

In the normal course of business, we gather nonpublic personal information on you from many sources:

• Applications, forms, and other information that you provide to us, whether in writing, in person, by telephone, electronically or by any other means. This information may include your name, address, social security number, employment information, income, credit references and other confidential information.
• Your transactions with us. This information may include your account balances, payment history, source of funds and account usage.
• Consumer reporting agencies. This information may include account information and information on your credit worthiness.
• Your web browser. This information may include financial and personal information you provide during a session.

Sharing Information Outside Horizon Bank

We do NOT share nonpublic personal information about you with anyone, except as permitted by law.

The law requires or permits us to provide nonpublic personal information about you to nonaffiliated third parties in order to:

• respond to a subpoena or court order;
• report to consumer reporting agencies;
• facilitate a proposed or actual sale, merger, or transfer of all or a portion of the bank or an operating unit;
• protect against fraud;
• collect on a debt obligation; or
• allow our service providers to help us process your applications or service your accounts. Service providers may include data processors, telephone and Internet service providers, check printers, billing service providers, mail service companies, insurers, loan settlement service providers, property inspection companies, attorneys or other professionals. These companies are contractually obligated to keep your information private and to use it only for the purpose specified.

We may report information about your account to credit bureaus. Late payments, missed payments, or other defaults on your account may be reflected in your credit report.

Sharing Information within the Bank and Information Accuracy

We restrict access to nonpublic personal information about you to those employees who need to know that information in the course of their job responsibilities. Employees are educated in the importance of maintaining the confidentiality of your information.

We maintain physical, electronic, and procedural safeguards that comply with federal standards to protect customer information. We also have internal controls to keep customer information as accurate and complete as we are able. We do not share nonpublic personal information with any bank affiliate for marketing purposes.

Former Customers

We do not disclose nonpublic personal information about former customers, except as permitted by law.